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This is a continuation-in-part of prior U.S. patent application sfTial 
number 08/549,271 filed on October 17, 1995 and prior U.S. patent app.ication 
serial number 08/733,504 filed on October 18, 1996, all of which are commonly 
assigned to the assignee of the present invention. 

BACKGROUND OF THK TNTVPNTTON 

L FIELD OF THE INVENTI ON 

The present invention relates to a system for managing copyrights in 
dealing in copyrighted digital data content, i.e., dealing in original digital data 
content and zdit^d. digital data content 

2. BACKGROUND ART 

Because analog data content is deteriorated in quality whenever 
storing, copying, editing, or transferring it, controlling copyrights associated 
with these operations has not been a serious problem. However, because 
digital data content is not deteriorated in quality after repeatedly storing, 
copying, editing, or transferring it, such controlling copyrights associati^d with 
these operation is a serious problem. 

Because there has been hitherto no adequate method for control ing a 
copyright for digital data content, the copyright is handled by the copyr ght 
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law or contracts. Even in the copyright law, compensation money for a 
digital- type sound- or picture-recorder is only systematized. 

Use of a data content includes not only referring to its contents but also 
5 normally effectively using by storing, copying, or editing obtained dala 

content by a user. Moreover, it is possible to transmit data content which is 
edited by a user to another person via on-line basis by a corrununication line 
or via off-line basis using a proper recording medium. Furthermore, it is 
possible to transmit the edited data content to the database to be regisi:ered as 
10 new data content. In such a case, the user who has edited the data content 
may also be an information provider. 

Under these circumstances, how to deal in a copyright of data content 
in a database is a large problem. However, there has not been adequate 
15 copyright management means for solving the problem so far, particularly 
ccpyright management means completed for secondary utilization such as 
copying, editing, or transferring of the data content. 

The inventor of the present invention proposed a system for managing 
20 a copjTight by obtaining a permit key from a key control center via a public 
telephone line in Japanese Patent Laid-Open No. 46419/1994 (GB 226*?302A) 
and Japanese Patent Laid-Open No. 141004/1994 (U.S. Patent No.5,504,933) and 
moreover, proposed an apparatus for managing the copyright in Japtinese 
Patent Laid-Open No. 132916/1994 (GB 2272822A). 



Moreover, a copyright management method for primary utili2:ation of 
digital data content such as display (including process to sound) or .storage 
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including real-time transmission of the digital data content in a database 
system and secondary utilization of the digital data content such as copying, 
editing, or transferring of the digital data content by further developing the 
above invention is proposed in Japanese Patent Application No. 64889/' 1994 
5 (U.S. Patent Application Serial No. 08/416,037). 

The database copyright management system of the above application in 
order to manage the copyright, either one or more of a program for managing 
the copyright, copyright information, and a copyright control message are 
10 used in addition to a use permit key corresponding to a requested use, .ind 
data content which has been transferred with encryption is decrypted to be 
used for viewing and editing, and the data content is encrypted again when 
used for storing, copying and transferring. 

15 The copyright control message is displayed when utilization beyond the 

range of the user's request or authorized operation is found to give caution or 
warning to a user and the copyright management program performs 
monitoring and managing so that utilization beyond the range of the user's 
request or authorized operation is not performed. 

20 

The inventor also proposed in Japanese Patent Laid-open No. 
185448/1996, EP publication No. EP 704785 A2 (U.S. patent application serial 
number 08/536,747) a system for specifically implementing a database 
copyright management system. 

25 

The above-mentioned system comprises a key management ceni er that 
manages a crypt key and a copyright management center that manages the 
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database copyright. According to this system, all of the data content delivered 
from a database is encrypted by a first crypt key, and a first user who wishes to 
uses data content directly from the database requests the key management 
center the key corresponding to the specific usage by presenting information 
on the first user to the center. In response to the primary usage request from 
the first user, the key management center transfers the information on the 
first user to the copyright management center. On receiving the information, 
the copyright management center transfers this information together with a 
copyright management program to the key control center. On receiving the 
copyright management program, the key control center transfers the first 
crypt key and a second crypt key K2 corresponding to the specific usage 
together with the copyright management program to the first user via a 
communication network. On receiving the first crypt key, the first use-r uses 
this key to decrypt the data content for usage. The user uses the second crypt 
key to encrypt and decrypt data content when subsequently storing, co)?ying or 
transmitting the data content. 

If data content is copied to an external record medium or transmitted 
without being stored, the first and second crypt keys are abandoned. If the 
first user wishes to use the data content again, the first and second crypt keys 
are re-delivered to the user from the copyright management center. The re- 
delivery of the second crypt key indicates a confirmation that the data content 
has been copied or transferred to a second user, and this is recorded in the 
copyright management center. 



In requesting a secondary usage to the copyright management center, 
the second user presents the information on the first user and information 
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on the original copyright to the copyright management center. The copyright 
management center transmits to the second user a permit key corresponding 
to the specific usage, together with a second crypt key (viewing permit key), a 
third crypt key (a permit key corresponding to the specific usage), and the . 
copyright management program which have been encrypted. 

On the other hand, it is widely practiced to establish LAN (Local Area 
Network) by connecting computers with each other in offices, organizations, 
companies, etc. Also, a plurality of networks are connected with each other, 
and Internet is now organized in global scale, by which a plurality of networks 
are utilized as if they are a single network. 

In LAN used in an organization such as firms, secret information is 
often stored, which must not be disclosed to outsiders. 

For this reason, it is necessary to arrange the secret information in such 
maimer that only a specific group of users can gain access and use sudi 
information, and such access is generally placed under control to prevent 
leakage of secret information to outsiders. 

There are roughly two methods to control the access: a method f o 
control access with access permission, and a method to do it by encrypnon. 

The method of access control by access permission is described in U.S. 
Patent Nos. 5,173,939, 5,220,604, 5,224,163, 5315,657, 5,414,772 and 5,438,508, in 
EP 506435, and in Japanese Patent Laid-Open 169540/1987. 
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The access control method based on encryption is disclosed in U.S. 
Patent Nos. 4,736,422, 5,224,163, 5,400,403, 5,457,746, and 5,584,023, in EP 438154 
and EP 506435, and in Japanese Patent Laid-Open 145923/1993. The access 
control method based on encryption and digital signature is desaibed .n U.S. 
5 Patent Nos. 4,919,545 and 5,465,299. 

Intranet is now being propagated, in which a plurality of LANs tie 
connected with each other via Internet and these LANs are utilized as if they 
are a single LAN. In the intranet, information exchange is performed via 
10 Internet, which basically provides no guarantee for prevention of piracy, and 
information is encrypted to prevent the piracy when secret information is 
exchanged. 

The prevention of information piracy during transmission by means of 
15 encryption is disclosed in U.S. Patent Nos. 5,504,818 and 5,515,441, and i:he use 
of a plurality of aypt keys is described in U.S. Patent Nos. 5,504,816, 5,353,351, 
5,475,757, and 5,381,480. Also, performing re-encryption is described in U.S. 
Patent No. 5,479,514. 

20 When encrypting, management of crypt key including transfer and 

receipt of crypt key becomes an important issue. Generation of keys by IC card 
is disclosed in U.S. Patent No. 5,577,121, and encryption/decryption by IC card 
is disclosed in U.S. Patent Nos. 5,347,581 and 5,504,817. 

25 Also, electronic watermark technique is described in EP 649074. 
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With recent development of computer network system, individual 
computers, used on stand-alone basis in the past, are connected together 
through the network system, and database system to commonly share the 
data is now propagated. Further, distributed object system has been proposed, 
5 in which application program or basic software called operating system as 
well as data is also commonly shared through the network. 

In the distributed object system, both data content and software ere 
supplied by a server as an object, which comprises program and data. 

10 

In the distributed object system, there are two systems, i.e. a system 
called object container, in which operating system, application program and 
data content are provided by a server and data content processing and data 
content storage are performed by a user terminal unit, which is an ordmary 

15 computer, and a system called server object, in which operating system, 
application program and data content are provided by a server, and data 
content processing is performed by a user terminal unit called network 
computer, while data content storage is carried out by a server. A system is 
further developed, in which data content processing is also performed by the 

20 server, and the user terminal unit is provided only with input/output 
function, and the whole system functions as a single computer. 

Further, there is a method of so-called object oriented programrring 
performing various processing by using "object" integrated with data content 
25 and program handling data content, instead of general form file consisiing of 
data header and data body. 
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In object a storing portion called as "slot" in an envelope called as 
"instance" accommodates data called as "instance variable". The slot is 
surrounded by one or more of procedures called as "method" for referring, 
processing, binding and so on, and the instance variable can be referred to or 
operated only via "method". This function is called as "encapsulation". 
Instruction from outside for make the "method" refer to or operate the 
instance variable is called as "message". 

This means, in another view, the instance variable which is impossible 
to be referred to or operated without through "method" is protected by the 
"method". Then, this can be used for encrypting the "method" and allowing 
the instance variable to be referred to or operated only by "message" which 
can decrypt the encrypted "method". 

In this case also, similarly to the case of data having general file form, 
since if entire "method" is encrypted, it is impossible to utilize "object", a part 
of the "method" is not encrypted. 

Another form of the network system called "license network" as rental 
network system, is considered. In this system, an enterprise providing 
network base such as communication lines also provides the systems other 
than communication lines such as fee charging system, security system, 
copyright management system, certification system, etc. And a service 
enterprise utilizes these services and carries out network business as if it is his 
own system. 
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Then, basic encryption-related technique used in the present invention 
will be desCTibed below. 

-Crypt key- 

5 Secret-key system is also called "common key system" because the same 

key is used for encryption and decryption, and because it is necessary to keep 
the key in secret, it is also called "secret-key system". Typical exaniples of 
encryption algorithm using secret-key are: DES (Data Encryption Standard) 
system of National Bureau of Standards, FEAL (Fast Encryption Algor .thm) 
10 system of NTT, and MISTY system of Mitsubishi Electric Corp. In the 
embodiments described below, the secret-key is referred as "Ks". 

In contrast, the public-key system is a cryptosystem using a public-key 
being made public and a private-key, which is maintained in secret to those 
15 other than the owner of the key. One key is used for encryption and th-.e other 
key is used for decryption. Typical example is RSA public-key system. In this 
specification, the public-key is referred as *'Kb*', and the private-key is referred 
as "Kv". 

20 Here, the operation to encrypt data content, a plain text material M to a 

cryptogram Cmks using a secret-key Ks is expressed as: 

Cmks = E (M, Ks). 

25 The operation to decrypt the cryptogram Cmks to the plain text data content 
M using a crypt key Ks is expressed as: 



58800.930CIP 



10 EXPRESS MAIL NO. EM1007^0755US 



M = D (Cmks, Ks). 

Also, the operation to encrypt the plain text data content M to a 
cryptogram Cmkb using a public key Kb is expressed as: 

Cmkb^E(M,Kb). 

The operation to decrypt the cryptogram Cmkb to the plain text data content 
M using a private-key Kv is expressed as: 

M = D (Cmkv, Kv). 

The operation to encrypt the plain text data content M to a cryptogram Cmkv 
using a private-key Kv is expressed as: 

Cmkv = E (M, Kv), 

and the operation to decrypt the cryptogram Cmkv to the plain text data 
content M using the public-key Kb is expressed as: 

M = D (Cmkb, Kb). 

The encryption technique is the means to exclude illegitimate use of 
data content, but perfect operation is not guaranteed. Thus, the possibility of 
illegitimate use of data content cannot be completely excluded. 
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On the other hand, electronic watermark technique cannot exclude the 
possibility of illegitimate use, but if illegitimate use is detected, it is possible to 
check the illegitimate use by verifying the content of electronic watermark, 
and there are a number of methods in this technique. These methods are 
5 described in Nikkei Electronics, No.683, 1997-2-24, pp.99-124, "'Digital 
watermark' to help stop to use illegal proprietary digital works in the 
multimedia age". Also, description is given on this technique by Walter 
Bender et al., 'Introducing data-hiding technology to support digital 
watermark for protecting copyrights", IBM System Journal, vol. 35, Nos. 3 & 4, 
10 International Business Machines Corporation. 
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SUMMARY OF THE INVENTION 

In the present application, it is proposed to provide a system for dealing 
in an original data content and an edited data content. 

In the present application, a data content is handled as an object, and 
the data content, functioning as an object, is edited in accordance with a edit 
program. Therefore, the edited data content can be expressed by the original 
data content and the editing scenario, which describes the edit detail based on 
an edit program. As the original data content to be utilized, there are, in 
addition to the one stored in the database, those prepared originally by the 
data editor. The data content prepared by the data editor can also be handled 
in the same manner as the other data by storing it in the database. In t.nis 
case, only the encrypted editing scenario is dealt in, and when the user obtains 
the encrypted editing scenario, the user decrypts the encrypted editing 
sci:i:'.u:i-^ u^ia^ ^rypv key obtained from a key iaa:v..^,-i:en: cer.c^r, -u.d 
obtains the original data content from the database in accordance with the 
editing scenario and re-constitutes the edited data content. 

In case there is the one who wishes sale of the editing scenario, its 
utilization right is sold by auction. 
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BRIEF DE.SCRrPTTnM QF THE DRAWTMC^ 

Figure 1 is a block diagram of an embodiment of a data management 
system. 

Figxire 2 illustrates an example of producing new data content using, a 
plurality of data contents as objects. 

Figure 3 is a block diagram of another embodiment of a data 
management system. 

Figure 4 is an outlined block diagram of an embodiment of a data 
content dealing system. 

Figure 5 is an- outlined block diagram of another embodiment of a data 
content dealing system. 

Figure 6 is an outlined block diagram of yet another embodimen: of a 
data content dealing system. 

Figure 7 is an outlined block diagram of a system dealing in en editing 
scenario. 
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. DETAILED DFSCRIPTION OF THE INA/KNTTOM 

The present invention is a copyright management system for digital 
data. In the following description, numerous specific details are set foith to 
5 provide a more thorough description of the present invention. It will be 
apparent, however, to one skilled in the art, that the present invention may 
be practiced without these specific details. In other instances, well known 
features have not been described in detail so as not to obscure the prese:nt 
invention. 

10 

The preferred embodiments are described below referring to the 
accompanied drawings. 

The edit processing of data content is performed by editing the original 
15 copyrighted data using an edit tool, which is an application program. The 
edited data content obtained by editing can be expressed by the utilized 
original data content, the information of the used edit tool and the edi'ing 
process data. Specifically, in case the edit tool is available, it is possible to 
reproduce the edited data, content by obtaining the original copyrighted data 
20 and the editing process data. 

Description on editing digital data is given first. 

Because digital data content is edited by using an edit program (edit 
25 tool) and thereby altering original data content, edited data content can be 
reproduced as the original data content, edit tool and editing process data 
content (editing scenario) are specified. In other words, unless the original 
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dat-a content edit tool and the editing scenario are specified, it is impossible to 
reproduce the edited data content. 

To produce new data content from single original data content, there 
are a case in which edited data content (A'} is obtained by altering original 
data content A; a case in which edited data content {A + X) is obtained oy 
adding data content X to the original data content A by a user; a case in which 
edited data content {A"l is obtained by dividing the original data content A 

into original data content elements Al, A2, A3, and changing the 

arrangement of the elements to such as A3, A2 and Al; and a case in v/hich 

edited data content {Al + XI + A2 + X2 + A3 + X3 ) is obtained by dividing 

the original data content A into original data content elements Al, A2, A3, 

also dividing the data content X of the user into XI, X2, X3, and 

arranging these elements. 

In these cases, alteration of original data content, change of original 
data content arrangement, combination of the original data content with user 
data content, and division of the original data content and combination of it 
with the user data content arise respectively a secondary copyright, whjch is 
necessary to be protected. The original copyright of the user, of course, exists 
in the data content X added by the user. 

To produce new data content by combining a plurality of original data 

contents, there are a case in which edited data content (A + B + C } i;; 

obtained by simply combining original data contents A, B, C, ; a case in 

which edited data content such as (A + X) is obtained by adding data content X 
to the original data content A, B, C, ; a case in which edited data con':ent 
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(Al + Bl + CI + A2 + B2 + C2 + + A3 + B3 + C3 + ) is obtcined by 

dividing the original data content A, B, C, into original data content 

elements Al, A2, A3, , Bl, B2, B3 , and CI, C2, C3 , combining them, 

and changing their arrangements; and a case in which edited data cor tent (Al 

+ Bl + CI + Xl + + A2 + B2 + C2 + X2-H +A3 + B3 + C3 + X3 + ) is 

obtained by dividing the original data content A, B, C, into original data 

content elements Al, A2, A3, , Bl, B2, B3, , and CI, C2, C3, 

combining with the elements of user data content XI, X2, X3, , and 

changing their arrangements. 

Also in these cases, combination of a plurality of original data contents, 
combination of a plurality of original data contents with user data content, 
division of a plurality of original data contents and change of the 
arrangements, and combination of divided plurality of original data contents 
wich tr.e user data content arise respectively a secondary copyright, wluch is 
necessary to be protected. Also, the original copyright of the user, of course, 
exists in the data content XI, X2, X3, added by the user. 

[Embodiment 1] 

The description of Embodiment 1 is given below referring to th'3 
drawing. 

Figure 1 shows a schematic view of a data copyrights managemt?nt 
system in which a user edits one original copyrighted data and transfei's it to a 
next user. 
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In the embodiment, reference numerals 1, 2, and 3 represent databases 
that store text data or binary, audio, and /or picture data constituting cctmputer 
graphics screens or programs, which is not encrypted; 9 is a communication 
line such as a public telephone line provided by a communication corr.pany 
or a CATV line provided by a cable television company; 10 is a recording 
medium such as a flexible disk; 4 is a primary user terminal; 5 is a secondary 
user terminal; 6 is a tertiary user terminal; and 7 is an n-th user terminal 
device. Reference numeral 8 represents a copyright management centeir for 
managing the data copyright 

The databases 1, 2, and 3, copyright management center 8, primary user 
terminal 4, secondary user terminal 5, tertiary user terminal 6, and n-th. user 
terminal 7 are cormected to communication line 9. In Figure 1, encrypted 
data content is transmitted via the path shown by a broken line, requests are 
transmitted from user terroinal 4, 5, 6, or 7 to database 1, 2, or 3 and copyTight 
management center 8 via the path shown by a solid line. The permit koy, 
copyright management program, and crypt key corresponding to a specfic 
usage are transmitted from database 1, 2, or 3 and copyright manageme^it 
center 8 to user terminal 4, 5, 6, or 7 via the path shown by an one-dot '^ain 
line. 

The Embodiment 1 employs a first public-key Kbl, a first private- key 
Kvl corresponding to the first public-key Kbl, a second public-key Kb2, .md a 
second private-key Kv2 corresponding to the second public-key Kb2 that are 
prepared by a first user, and a first secret-key Ksl and a second seaet-ke> Ks2 
prepared by the database. The database uses the first secret-key Ksl to er crypt 
data content M: 
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Cmksl = E{M,Ksl) 
and further encrypts the first secret-key Ksl by the first public-key ICbl. 

Ckslkbl=E(Ksl,Kbl) 

and the second secret-key Ksl by the second public-key Kb2: 

Ckslkb2 = E (Ks2, Kb2). 

The database then transmits these encrypted data content Cmksl and the first 
and the second secret-keys Ckslkbl and Ck2kb2 to the first user. 

The first user decrypts the encrypted first secret-key Ckslkbl using the 
first private-key Kvl: 

Ksl =D(Kvl, Ckslkbl), 

and decrypts the encrypted data content Cmksl by the decrypted first se-n-et- 
key Ksl:' 

M = D (Ksl, Cmksl) 

and use it. The user decrypts encrypted second seaet-key Cks2kb2 by thf? 
second private-key Kv2: 
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which is subsequently used as a key for encrypting/decrypting of storing, 
copying, or transmitting data content. 

5 

If the first user copies data content obtained and then supplies it to 
secondary user 5, the data content does not involve the copyright of first user 
because no modifications have been made to the data content. If, however, 
flrst user produces new data content based on the data content obtained or 
10 using a means for combining the original data content with other data 

content, the new data content involves a secondary exploitation right for first 
user, and first user has the original copyright for this secondary work. 

Similarly, if second user produces new data content based on the data 
15 ccnten!" obtained from first user or combining with other data content, the 
new data. content involves a secondary exploitation right for the second user, 
and the second user has the original copyright of this secondary work. 

Databases 1, 2, and 3 store text data content or binary, digital audio, or 
20 digital picture data content constituting computer graphics screens or 

programs in unencrypted form. This data content is encrypted and suii^plied 
to the user terminal 4 via communication line 8 during a data con ten": read 
operation in response to a request from first user terminal 4. 

25 The method of managing data copyrights obtained from a database is 

described in Japanese Patent Application 1994-237673 (Japanese Patent L^aid 
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Open 1996-185448, U.S. Patent Application Serial No. 08/536,747, EP 
704785 A2). 

As shown in Figure 2, first user extracts parts M4, M5 and M6 
constituting data content from a plurality of data contents Ml, M2 and M3 
obtained from one or more databases, and produces new data content M7 
from these parts M4, M5 and M6. 

First user supplies new data content M7 to second user; new data 
content M7 involves a secondary copyright associated with the editing of 
original data content Ml, M2 and M3 as well as the original copyright for 
original data content Ml, M2 and M3 from which parts M4, M5 and M6 
produce new data content M7. 

The original data content Ml, M2 and M3 are encrypted using each of 
the second secret-keys Ks21, Ks22, Ks23 supplied with each of data content Ml, 
M2 and M3 when used for operations other than display; i.e., store, edit, copy 
or transmit: 

Cmlks21 =E (Ml,Ks21) 
Cm2ks22 = E (M2, Ks22) 
Cm3ks23 = E CM3, Ks23). 

The data content parts M4, M5 and M6, of original data content are al.sc 
encrypted using each of the second secret-keys Ks21, Ks22, Ks23 supplied with 
each of the original data content when used for operations other than display: 
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Cm4ks21 - E (M4, Ks21) 
Cm5ks22 = E (M5, Ks22) 
Cm6ks23 = E (M6, Ks23). 

First user who has edited the data content provides a digital sigiiature 
for edit program Pe using first Private-key Kvl: 

Spe = D (Pe, Kvl) 

and supplies encrypted original data content parts Cin4ks21, Cm5ks22 and 
Cm6ks23 to second user together with the edit program Pe with the digital 
signature, via communication line 9 or by storing into the recording medium 
10. 

''J pen receipt cf the encrypted original data content parts Cm4k,s21, 
Cm5ks22 and Cm6ks23, and the edit program Pe, second user requests second 
secret-keys ICs21, Ks22, Ks23 for decryption of the encrypted original data 
content parts Cm4ks21, Gm5ks22 and Cm6ks23 by presenting the edit program 
Pe with the digital signature, to the copyright management center 8. 

Data copyright management center identifies first user from the 
presented digital signature in the edit program Pe, using first public-key Kbl: 

Pe ^ E (Spe, Kbl), 



and determines if first user is a valid user to use the original data cor .tent to 
which the second secret-keys Ks21, Ks22, Ks23 correspond. If first user is the 
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valid user, the center transmits the second secret-keys Ks21, Ks22, Ks23 to 
second user. Otherwise, it does not transmit the second secret-keys Ks21, Ic:s22, 
Ks23 to second user. 

The digital signature Spe presented to the copyright management 
center is registered in the center as a valid procedure for authorizing t]".e first 
user being a secondary copyright owner. 

While the above data content edition of original data content car. be 
performed by using an edit program corresponding to the original data 
content, by handling the original data content as object-oriented software, it is 
possible to facilitate further editing of data content and manage more 
preferably copyrights of data content 

Moreover, by adopting agent-oriented software, a user can syntht.'size 
data content with little labor. 

The agent-oriented software, unlike the conventional one, is a program 
having autonomy, flexibility and cooperativeness, which is able to meet a 
user's request with its characteristics of autonomy, flexibility and 
cooperadveness in accordance with only a general instruction of the user 
without specifically giving every operation instruction to the software. 

By incorporating the agent program into a basic system of a data 
copyright management system so that the database utilization of a user is 
monitored, and it is arranged that information including data utilization 
condition and charging is collected at the database or the copyright 
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management center, using metering function placed in user terminal, and 
thus, it is possible to know the database utilization condition of the user at the 
database side or the copyright management center side and achieve more 
accurate copyright management. These agent program and its data are also 
necessary to be protected in copyrights, and therefore, are encrypted like 
original data content. 

The data on copyrights can be handled in the computer programming 
or processing as "object" integrated of program and data content. 

[Embodiment 2] 

Embodiment 2 is described referring to Figure 3. This embodiment 
uses first secret-key Ksl, second secret-key Ks2, third secret-key Ks3, plaintext 
original copyright label LcO and plaintext copyright management program Pc. 

The data copyright management system shown in Figure 3 comj) rises 
database 11, key control center 12, users 13, 13, 13 ... and the network 14 that 
connects these entities. Database 11 receives data content from information 
providersCIP) 15, 15, 15.... However, in some cases, data content is supplied 
directly to users 13 from information providers 16, 16, 16 ... via 
communication line 14 without database 11 intervening. 

The data content used in the invention is the object comprising 
combined program and data content. Data is supplied from information 
providers 15, 15, 15 ... to database 11 and to primary users 13. However, in 
some caseS; data content is supplied from information providers 16, 16, 16 ... 
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via communication line 14 or via information record mediunn 17 such as CD- 
ROM or the like directly to primary users 13 without database 11 intervening. 

The solid line, broken line and one-dot chain line in this Figure 3 show 
5 the path for data content and requests for crypt keys, path of encrypted data 
content and path of crypt keys, respectively. 

Primary users 13 are not merely users but can be information providers 
15 or 16 that provide new data content (secondary copyrighted data) b}' 
10 combining or revising a plurality of obtained original data content. 

In the data copyrights management system, the original data ccntent 
provided by each of information providers 15 and 16 has been encrypted to 
protect the copyright. Therefore, the use of the encrypted original dati 
15 content obtained by first user 13 needs to be decrypted. All of the crypt keys 
for the decryption are deposited in key control center 12 to be controlled by the 
center. 

Each information provider 15 or 16 can adopt freely any cryptosystem. 
20 However, the cryptosystem described later and used after secondary 

utilization of data content is limited to one adopted by key control center 12. 

[n this system, plaintext original data content MO is encrypted by first 
secret-key Ksl: 



25 



CmOksl = E (MO, Ksl), 
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and is provided to primary users 13 from information provider 15 via data 
content database 11 and communication line 14, or from information 
provider 16 via communication line 14, or via information recording 
medium 17 such as CD-ROM, together with original copyright label LcO. 

Original plaintext copyright label LcO is attached to encrypted original 
data content CmOksl provided for primary users 13, and is used for obtaining 
primary use permit keys, etc. Namely, encrypted original data content 
CmOksl includes plaintext original copyright label LcO and encrypted original 
data content CmOksl. The name of application programs in use, outlined 
explanation, fees and charging method are entered into plaintext origiaai 
copyright label LcO in addition to general information including the n:ime of 
original creator, title name and creation date. The nimiber of a aypt key is 
also entered if necessary. Digital signatiire by original creator added to 
plamtext original copyright label LcO prevents false copyright claiming. 

Primary users 13 who require use of encrypted original data content 
CmOksl make a request to key control center 12 via communication line 14 
for distributing primary use permit keys Kl indicating original copyright label 
LcO. 

Key control center 12 that has identified secret-key as first secret-key Ksl 
to be distributed, by original copyright label LcO indicated, distributes thjs 
identified first secret-key Ksl to primary users 13 via network system 14. 
Upon receipt of distributed primary use permit key Kl, the devices of primary 
users 13 are turned to the copyright management mode, and the primary 
copyrighted data content becomes available for use to primary users 13. 
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On the other hand, key control center 12 charges as well as grasps the 
use condition of original data content and of the database used by primary 
users 13. 

Primary users 13 decrypt encrypted primary copyrighted data content 
CmOksl using first secret-key Ksl: 

MO = D (CmOksl, Ksl), 

and use it. 

When decrypted original data content MO is stored in primary users 13 
devices, it is encrypted again by first secret-key Ksl 

CmOksl = E (MO, Ksl) 

and re-encrypted original data content CmOksl is stored. 

For repeated use of re-encrypted original data content CmOksl, repeated 
decryption and encryption are carried out using first secret-key Ksl. 

Primary users 13 who require to edit original copyrighted data content 
MO make a request to key control center 12 for distributing second secrst-key 
Ks2 via conamuni cation line 14. Key control center 12 that receives the 
request for distributing second secret-key Ks2 provides primary users 1 3 via 
communication line 14. Primary users 13 that have received second smcret- 
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key Ks2 edit original data content MO and obtain halfway edited data content 

When halfway edited data content MO' is stored in users 13 devices, it is 
5 encrypted by second secret-key Ks2: 

Cm0'ks2 = E (MO', Ks2). 

When the edit is finally completed, primary users 13 prepare third 
10 seaet-key Ks3 in order to execute the secondary copyright with reference to 
the data content edition concerning final editorial data content Ml, and 
register third secret-key Ks3 into key control center 12. The key control center 
12 also may prepare third secret-key Ks3 and distribute it in response to a 
request from primary users 13. 

15 

When primary users 13 copy editorial data content Ml into external 
recording medium 18 or transfer it via communication line 14, they encrypt 
editorial data content using third secret-key Ks3: 

20 Cmlks3 = E(Ks3,Ml), 

and provide it for secondary users 19. 

Secondary users 19 who desire to use provided encrypted editorial data 
25 content 

Cmlks3 request key control center 12 for distributing third secret-key Ks3 via 
communication line 14. Key control center 12 that has received the reqi.est 
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for distributing third secret-keys Ks3 from secondary users 19 distributes third 
seaet-key Ks3 to secondary users 19 via communication line 14, 

Secondary users 19 who have received third secret-keys Ks3 dea'ypt 
encrypted editorial data content Cmlks3 using third secret- key Ks3: 

Ml = D (Ks3, Cmlks3) 

and use it. 

When using encrypted data content Cmlks3 again, decryption and 
encryption are carried out using third seaet-key Ks3 also in this case. . 

[Embodiment 3] 

Embodiment 3 in which a user edits one original copyrighted data 
content and transfers it to a next user, is described as below referring to Figure 
4. This embodiment uses "user label", "copyright label" and "edit label" in 
order to protect data content copyrights and execute the copyrights. 
Information of the label owner is described in the user label; information 
relating copyrighted data content is described in the copyright label; and 
contains information of the edit tool and editing process data (editing 
scenario) are described in the edit label, which may be described edit tool (edit 
program) instead of edit tool information. 

The user label is generated by the data management center according to 
the information of the user when the user joins the system. The copyright 
label is generated by the data management center when the author of tl-.e data 
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content presents the content to the data managennent center. The edit: label is 
generated by the data managen>ent center, when the user who has ed.ted the 
data content presents the user label and the editing scenario to the data 
management center. These are transferred to each label owner and aie stored 
5 at the data management center. 

(1) The original author A presents the original copyright label LcO and 
requests the data management center to distribute original secret-key KsO. 
The original author may transfer or deposit the original data content to an 

- 10 information provider or to database so that the information provider or the 
database can play a role of the original author. 

It is also possible that the original author A stores the original secret- 
key KsO and encrypts the original data content MO without depending on the 
15 data management center, while the original secret-key KsO must be stored at 
the data management center to utilize the original data content MO by the 
user (data content user). 

(2) When requested to distribute the original seaet-key KsO, the data 

20 management center encrypts the original secret-key KsO corresponding to the 
original copyright label LcO using public-key KbO of the original author A: 

CksOkbO = E (KsO, KbO) 

25 and sends the encrypted original secret-key CksOkba together with the original 
copyright label LcO to the original author A. 
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In this case, the data management center performs one-way hafih to the 
origin;d copyright label LcO using algorithm such as MD 5, for example, to 16- 
byte data content amount, prepares an original copyright label fingerprint FO, 
and sends it to the original author A. This electronic fingerprint is piepared 
5 on each of the original data content and edited data content each tima the 
original data content is edited and edited data content is obtained and is 
transferred, together with the data content. 

(3) When the enaypted original seaet-key CksOkbO is distributed, thi original 
10 author A deaypts the encrypted original secret-key CksOkbO using private-key 

KvO of the original author A: 

KsO = D (CksOkbO, KvO), 

15 encrypts the original data content MO using the decrypted original secret-key 
KsO: 

CmOksO = E (MO, KsO) 

20 and transfers the encrypted original data content CmOksO, the original 

copyright label LcO and the original copyright label fingerprint FO to the first 
user Ul, 

(4) When the encrypted original data content CmOksO, the original copyright 
25 label LcO and the original copyright label fingerprint FO are transferred, the 

first user Ul presents the original copyright label LcO, the original copyright 
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label fingerprint FO and first user label Lul and requests the data management 
center to distribute the original secret-key KsO. 

(5) When requested to distribute the original secret-key ksO, the data 

5 management center confirms validity of the presented original copyright 

label LcO using the original copyright label fingerprint FO and registers the first 
user label Lul. At the same time, the original secret-key KsO corresponding to 
the original copyright label LcO is encrypted using public-key Kbl of th.e first 
user Ul: 

10 

CksOkbl = E(KsO,Kbl) 

and the encrypted original seaet-key CksOkbl is distributed to the firs : user 
Ul. 

15 

(6) When the encrypted original secret-key CksOkbl is distributed, the first 
user Ul decrypts the encrypted original secret-key CksOkbl using private-key 
Kvl of the first user Ul: 

20 KsO = D (CksOkbl, Kvl), 

decrypts the encrypted original data content CmOksO using the decryp:ed 
original secret-key KsO: 

25 MO = D (CmOksO, KsO), 
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and edits the decrypted original data content MO using the edit tool ^nd 
obtains edited data content Mel. 

The edited data content Mel thus obtained contains copyright of the 
5 first user, who edited the data content, and also copyright of the original 
author who prepared the original data content. 

The copyright of the original author relating to the original daia 
content MO can be protected by the original copyright label LcO which has been 

10 registered, original copyright label fingerprint FO and the original seo'et-key 
KsO corresponding to the original copyright label LcO and also by the iirst user 
label Lul and the first secret-key Ksl corresponding to the ftrst user label Lul. 
However, because no key for encrypting the edited data content Mel s 
available, the secondary copyright of the first user relating to the edited data 

15 content Mel is not yet protected. 

(7) To protect the secondary copyright of the first user relating to the edited 
data content Mel, label of the first user, who is the author of the edited data 
content, and its electronic fingerprinting are used in this embodiment 

20 

As already described, the edited data content can be expressed by data 
content of the utilized original data content, information of the used edit tool 
and the editing scenario (editing process data content). Accordingly, *hese 
informations and editing scenario are entered in the first user label, i e. the 
25 first edit label Lei. 
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Further; to protect secondary exploitation right as the secondary 
copyright in subsequent distribution process, the user Ul presents tho first 
edit label Lei to the data management center so that the secondary 
exploitation right of the user Ul is registered. 

5 

(8) When the first edit label Lei is presented, the data management center 
confirms validity of the presented original copyright label LcO using the 
original copyright label fingerprint FO and registers the first edit label Lei. At 
the same time, the electronic fingerprint Fl of the first edit label Lei is 

10 prepared, and first edit secret-key Ksel corresponding to the first edit label Lei 
is encrypted by public-key Kbl of the first user Ul at the data management 
center: 

Ckselkbl = E (Ksel, Kbl), 

15 

and the encrypted first edit secret-key Ckselkbl is distributed to the fi:st user 
Ul together with the electronic fingerprint Fel of the first edit label Lei. 

(9) When the encrypted first edit secret-key Ckselkbl and the electronic 
20 fingerprint Fel of the first edit label Lei are distributed, the first user Ul 

decrypts the encrypted first edit secret-key Ckselkbl using private-key Kvl of 
the first user Ul: 

Ksel =D (Ckselkbl, Kvl), 

25 

encrypts the first edited data content Mel using the decrypted first edii^ secret- 
key Ksel: 
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Cmelksel = E (Mel, Ksel) 

and transfers the encrypted first edited data content Cmelksel to the s^icond 
5 user U2 together with the first edit label Lei, and the electronic fingerprint 
Fel of the first edit label Lei. 

Then, the same operation is repeated. 

10 Each user may put digital signature which one-way hash value of the 

user's label is encrypted using user's private-key on the user's label to be 
presented to the data management center. Then, the data managemen t center 
decrypts the enaypted one-way hash value using the user's public-key, 
calculates the one-way hash value of the label and compares the two oae-way 

15 hash values in order to verify validity of each user's label. 

In this embodiment, only the first edit label Lei and the electronic 
fingerprint Fel of the first edit label Lei are transferred together with tlie 
encrypted first edited data content Cmelksel when edited data content 
20 transfer, while it is possible to arrange in such manner that the other Libels 
and electronic fingerprints can be simultaneously transferred. 

In the editing by utilizing a plurality of data content as shown in Figure 
2, operation is complicated because there are a large numbers of data content 
25 and it can be carried out as in the editing process using a single data content. 
Description is not given here to avoid lengthy explanation. 
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In the systems described above, the data content is encrypted using 
secret-key, and the secret-key for its decryption and secret-key for re- 
encryption used for storage, copying and transfer are distributed by the data 
management center based on the user label presented by the user. 

5 

[Embodiment 4] 

In case of distributed object system represented by license netwc rk 
system, the use of network computer to perform only input/ output of data 
content and data content processing and not provided with data conte nt 
10 storage unit is adopted instead of conventional type computer, which 
possesses data content storage unit of large capacity. 



Further, the use of a network computer similar to a terminal unit of 
large size computer, having only input /output function of data content and 
15 not provided with data content processing unit is also considered. 

This network computer does not have data content storage unit and 
cannot store or copy the data content. 



20 Next, description is given on an embodiment, which can also be 

applied to a network computer not provided with data content stora^je unit 
and used in the distributed object system. It is needless to say that th;s 
embodiment is also applicable to an ordinary computer provided with data 
content storage unit. 

25 

To protect data content copyright, it is necessary to use some sort of 
encryption technique to restrict unauthorized utilization of the data content. 
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In the Embodiment 3 described above, to protect copyright in a system 
for an ordinary computer having data storage unit, encrypted data content 
and labels not encrypted as dues to utilize the data content are used 

In contrast, in a system for a network computer, which has orly the. 
function of the above-mentioned terminal unit, the data content is not 
stored, copied or transferred, and there is no need to encrypt the dah'i content 

As already explained, the editing of data content is performed by 
modifying the original data content using the edit tool, and data content of 
the edited data content thus obtained can be expressed by the utOized original 
data content, information of the used edit tool and the editing scenaiio. 

In case edited data content is produced by utilizing the data content in 
the database existing on the distributed object system, the edited data content 
can be reproduced by specifying the utilized database, the used original data 
content, information of the used edit tool and the editing scenario. The same 
applies to the case where a plurality of data content obtained from a single 
database or a plurality of databases are utilized. 

DesCTiption is given below on Embodiment 4 referring to Figure* 5. 

In this embodiment, the original copyright owner and the information 
provider holding the data content are discriminated from the user whi^ does 
not hold data content, and are arranged on the network side with the cata 
management center and the like. 
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In the system of this embodiment, public-key and private-key ;ire used. 
If original data content is transferred to a user, the original data contf^nt is 
encrypted by using a secret-key or a public-key of transferred destination for 
the purpose of security. 

The first user Ul searches the data content and collects necessexy data 
content utilizing the network, broadcasting or recording medium. The 
collected data content is simply stored temporarily on memory of the user Ul. 
Even when data content storage unit such as a hard disk drive is included in 
the device of the user Ul, the data content is not stored in the data content 
storage unit. 

In order that the data content is not stored, when there is an attempt to 
store it, inhibition of storage of the data content is performed by destroying 
the data content on memory, changing data content header on memory, 
turning the data content to one-way hash value, changing file name to non- 
storable file name, etc. 

While it is possible to inhibit the storage by data content storage 
inhibition program, which is incorporated in the program of the data content 
having object structure, higher reliability is accomplished if the storage 
ini\ibition is performed by an operating system, which is related to the entire 
system or to the user's device. 



Description is given on a case where a plurality of data content are 
utilized in the fourth embodiment, 
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(l)(2)The first user Ul presents the first user label Lul to the data 

management center, collects the original data content MOi (i = 1, 2, 3, ) 

from data content Library of the information provider IP in the system and 
5 . obtains a edit tool Pe. In this case, the original data content MOi and f he edit 
tool Pe are encrypted using public-key Kbl of the first user Ul: 

CmOikbl = E (MOi, Kbl) 
Cpekbl = E (Pe, Kbl) 

10 

and the encrypted original data content CmOikbl and the encrypted edit tool 
Cpekbl are distributed to the first user Ul. 

In this case, the first user label Lul is referred, and utilizing conditions 
15 of the original data content MOi and the edit tool Pe are recorded at tl e data 
managenrient center and are utilized for charging of a fee. 

(3) When the encrypted original data content CmOikbl amd the encrypted edit 
tool Cpekbl are distributed, the first user Ul decrypts the distributed (jncrypted 
20 original data content CmOikbl and the encrypted edit tool Cpekbl using 
private-key Kvl of the first user Ul: 

MOi = D (CmOikbl, Kvl) 
Pe = D (Cpekbl, Kvl). 

25 

Using the decrypted edit tool Pe, the decrypted original data content MOi is 
edited, and a first edited data content Mil (i - 1, 2, 3, ) is obtained. 

58800.930CIP 39 EXPRESS MAIL NO. EM10()740755US 



V 



(4) Obtaining the first edited data content Mli, the first user Ul enary]?ts a first 
scenario Sli, which is the editing process data content for the first edited data 
content Mli, using public-key Kbc of the data management center: 

5 

Cslilcbc = E(SIi,Kbc) 

and presents the encrypted first scenario Cslikbc together with the firit user 
label Lul to the data management center, so that secondary copyright of the 
10 user Ul is registered. 

(5) When the encrypted first scenario Cslikbc is presented, the data 
management center decrypts the encrypted first scenario Cslikbc usin^ 
private-key Kvc of the data management center: 

15 

Sli = D (Cslikbc, Kvc), 

prepares a first edit label Lei based on the presented user label of the iirst user 
Ul and the decrypted first scenario Sli, stores it in the data management 
20 center, encrypts the first edit label Lei using public-key Kbl of the first user 
Ul: 

Clelkbl = E (Lei, Kbl), 
25 and transfers the encrypted first edit label Clelkbl to the first user Ul. 
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(6) When the encrypted first edit label Clelkbl is transferred, the first user Ul 
decrypts the encrypted first edit label Clelkbl using private-key Kvl of the 
first user Ul: 

Lei = D (Clelkbl, Kvl), 

encrypts the decrypted first edit label Lei using public-key Kb2 of the second 
user U2: 



Clelkb2 = E (Lei, Kb2) 

and transfers the encrypted first edit label Clelkb2 to the second user U2, but 
the first edited data content Mli or the encrypted first edited data content is 
not transferred to the second user U2. 

When the computer of the first user Ul is provided with a data, content 
storage unit, there is possibility that the collected data content or the edited 
data content may be stored in the storage unit, however, storage inhibition as 
described above is carried out to exclude storage, copying and transfer 

In this case, it is possible, instead of the encrypted first edit label 
Clelkb2, to use electronic fingerprint Fl, which is obtained by turning the first 
edit label to one- way hash value. In so doing, it is possible to perforir 
simplified transfer of the edit label by telephone voice. 
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(7) When the encrypted first edit label Clelkb2 is transferred, the second user 
U2 decrypts the transferred encrypted first edit label Clelkb2 using the private- 
key Kv2 of the second user U2: 

Lei = D (Clelkb2, Kv2), 

encrypts the first edit label Lei using the private-Key Kv2 of the second user 
U2: 

Clelkv2 = E (Lei, Kv2) 

and presents the encrypted first edit label Clelkv2 together with the .second 
user label Lu2 to the data management center. 

(8) When the encrypted first edit label Clelkv2 and the second user label Lu2 
are presented, the data management center decrypts the presented encrypted 
first edit label Clelkv2 using public-key Kb2 of the second user U2: 

Lei = D (Clelkv2, Kb2), 

collects the original data content MOi shown on the decrypted first edit label 
Lei, edits the original data content MOi using the edit tool Pe based cn the first 
scenario Sli described on the first edit label Lei, and reproduces the first 
edited data content Mli. 
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When the first edited data content Mli is reproduced, the data 
management center encrypts the first edited data content Mli and the edit 
tool Pe using the public-key Kb2 of the second user U2: 

Cmlikb2 = E (Mli, Kb2) 
Cpekb2 = E (Pe, Kb2) 

and transfers the encrypted first edited data content Cml:kb2 and the 
encrypted edit tool Cpekb2 to the second user U2. 

(9) When the encrypted first edited data content Cmlikb2 and the enaypted 
edit tool Cpekb2 are distributed, the second user U2 decrypts the distrit^iited 
encrypted first edited data content Cmlikb2 and the encrypted edit too) 
Cpekb2 using private-key Kv2 of the second user U2; 

Mli = D (Cmlikb2, Kv2) 
Pe = D (Cpekb2, Kv2) 

and edits the decrypted first edited data content Mli using the decrypted edit 

tool Pe, and the second edited data content M2i (i = 1, 2, 3, ) is 

obtained. 

(10) When the second edited data content M2i .is obtained, the second t.ser U2 
encrypts the second scenario S2i, which is editing process data content ^f the 
second edited data content M2i, using the public-key Kbc of the data 
management center: 
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Cs2ikbc = E (S2i, Kbc) 



and presents the encrypted second scenario Cs2ikbc together with the second 
user label Lu2 to the data management center. 

(11) When the encrypted second scenario CsZikbc is presented, the dala 
management center decrypts the encrypted second scenario Cs2ikbc using the 
private-key Kvc of the data management center: 

S2i = D (Cs2ikbc, Kvc), 

prepares a second edit label Le2 based on the presented user label of tlie 
.second user and the decrypted second scenario S2i, stores it in the data content 
management center, encrypts the second edit label Le2 using public-kt?y Kb2 of 
the second user U2: 

Cle2kb2 - E (Le2, Kb2) 

and transfers the encrypted second edit label CIe2kb2 to the second user U2. 

(12) When the encrypted second edit label Cle2kb2 is transferred, the :;econd 
user U2 decrypts the encrypted second edit label Cle2kb2 using privatt-key 
Kv2 of the second user U2: 

Le2 = D (Cle2kb2, Kv2), 
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encrypts the decrypted second edit label Lei using public-key Kb3 of the third 
user U3: 

Cle2kb3 = E (Lei, Kb3) 

5 

and transfers the encrypted second edit label Cle2kb3 to the third user U3. 
Then, the same operation is repeated. 

10 In the Embodiment 4 using this distributed object system, the data 

content is not stored by the user, but it is stored only in the database. On the 
other hand, the user controls and stores only the information relating; to user 
and editing, Le. the edit label having information of the utilized original data 
content and the used edit tool, the editing scenario and the information of the 

15 user who has edited. Only this edit label is encrypted and transferred between 
the users. Therefore, the data content is not stored, copied or transferred. 

It is also possible to simultaneously provide two systems so that the 
two systems can be adequately selected and utilized, i.e. a system where the 
20 keys for re-encryption is distributed at the same time as the keys for 
decryption, and a system where keys for re-encryption are separately 
distributed from those for decryption. 

[Embodiment 5] 

25 Description is given on an embodiment of a data content dealir g 

system for dealing in an original data content and an edited data content 
obtained by editing the original data content by the user, referring to Figure 6. 
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The original data content handled in this system is an object, ami the 
edited data content is expressed as the original data content object linked by an 
editing scenario. Therefore, only the editing scenario is dealt in. Upon 
receipt of the editing scenario, the user collects and links the original cata 
content used in accordance with the editing scenario and reproduces the 
edited data content. In this case, the original data content may be collected or 
linked by the user himself, but the burden on the user may be reduced if it is 
performed in the system side or by using an agent program. 

A data content dealing center, which serves as a core of the systiim, 
comprises a data content database, an editing scenario database, a key 
management center, and a data content dealing management center present 
on a network. 

The data content database stores the original data content provided by 
an information provider (EP) and supplies it in response to the request of the 
user. 

The editing scenario database stores the editing scenario when the user 
obtained the edited data content by utilizing the original data content or user 
data content created by the user and supplies it in response to the request of 
the user. 

The key management center stores a secret key for 
encryption/decryption for the original data content, the user data cor tent and 
the editing scenario and supplies it in response to the request of the user. 
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A data content dealing management center prepares a catalog and 
advertises for the original data content or the edited data content and 
performs sales management and collecting a fee to the user, and also manages 
a copyright label of the data content to be stored in the data content database. 

An editing scenario dealing management center prepares a catalog and 
advertises for the edited data content and performs sales management and 
collecting a fee to the user, and further, when necessary, collects and links the 
original data content according to the editing scenario and manages a label for 
the editing scenario to be stored in the editing scenario database 

For the detailed operation of each component, which comprise;; these 
data content dealing centers, description is not given here because it i^: the 
same as already explained. 

(1) The information provider IPi (i = 1, 2, 3, ; the same applies hereinafter) 

encrypts the original data content MOi using an original secret-key KOi: 

CmOiksOi = E (MOi, KsOi), 

encrypts the corresponding original secret-key KsOi using a public key .<rbc of 
the data content dealing center: 

CksOikbc = E (KsOi, Kbc) 
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and supplies the encrypted original data content CmOiksOi (shown as "mOi" in 
the figure) and the encrypted original secret-key CksOikbc (shown as "ksOi" in 
the figure) to the data content dealing center. 

The original secret-key KsOi may be prepared by the informatioa 
provider IPi, or the information provider IPi may ask the key manag-^ment 
center to generate it. In case the key management center generates tho 
original secret-key KsOi, the generated original secret-key KsOi is encrypted 
using a public key KbOi of the information provider IPi: 

CksOikbOi = E (KsOi, KbOi). 

The encrypted original secret-key CksOikbOi is distributed to the infonnation 
provider IPi, who decrypts it using a private-key KvOi: 

KsOi - D (CksOikbOi, KvOi) 

and the decrypted original secret-key KsOi is used for encryption of the 
original data content MOi. 

The data content dealing center decrypts the supplied encrypted 
original secret-key CksOikbc using a private-key Kvc of the data content 
dealing center: 

KsOi = D (CksOikbc, Kvc), 
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decrypts the encrypted original data content CmOiksOi using the decry]5ted 
original secret-key KsOi: 

MOi = D (CmOiksOi, KsOi) 

and stores the decrypted original data content MOi and the corresponding 
original secret-key KsOi in the data content database. 

The information provider or the data content dealing center may add 
watermark to the original data content MOi to check illegitimate use a:id may 
store it. 

To promote utilization of the original data content, the data content 
dealing management center prepares a catalog by means to compress cr to 
divide into parts so that the original data content cannot be utilized as it is 
and posts it in the data content dealing center. 

(2) After reviewing the original data content prepared in catalog, a first user 
Uli presents a first user label Luli and a public key Kbli of the first user Uli, 
and by specifying the original data content to be utilized, requests for use to 
the data content dealing center. 

(3) Upon receipt of the request for use of the original data content MOi, the 
data content dealing center confirms the user label Luli to check for fee 
charging and identification, and then, encrypts the original data content MOi 
using the corresponding original secret-key KsOi: 
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CmOiksOi = E (MOi, KsOi), 



encrypts the original secret-key KsOi using a public-key Kbii of the first user 
Uli: 

CksOikbli = E (KsOi, Kbli) 

and distributes the encrypted original data content CmOiksOi and the 
encrypted original secret-key CksOikbli to the first user Uli, and also ciarges 
for the original data content utilization to the first user Uli. 

(4) When the encrypted original data content CmOiksOi and the encry]?ted 
original secret-key CksOikbli have been distributed, the first user Uli decrypts 
the encrypted original secret-key CksOikbli using a private-key Kvli of the 
first user Uli: 

KsOi = D (CksOikbli, Kvli), 

decrypts the encrypted original data content CmOiksOi using the decrypted 
original secret-key KsOi: 

MOi = D (CmOiksOi, KsOi) 

and creates a new first edited data content Mli using the decrypted ori^;inal 
data content MOi. 
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As described above, there are two cases to edit the data content: the case 
where a single original data content is used and the case where a plurality of 
original data contents are used. In these cases, the user's data content n*iay be 
added. Therefore, as the data content to be used for edit in this embodijient, 
5 there are, in addition to a single data content, a plurality of original date*, 
contents, and user's data content. The edited data content comprises thase 
data content and editing scenario, i.e. the details of editing. By obtainin g 
these^ it is possible to reproduce the edited data content. 

10 Incidentally, the original data content is originally stored in the data 

content database of the data content dealing center. Accordingly, data which 
is not yet stored in the data content dealing center when newly generated by 
editing of the data content, is the user's data content and the editing scenario. 

15 Therefore, by storing these in the data content dealing center, it is 

possible to handle the first user data content of the user who edited the data 
content in the same manner as the original data content, and the user c*m be 
also an information provider. 

20 (5) The first edited data content Mli comprises the original data conten: MOi 
and a first editing scenario Sli. Further, in some cases, the first user data 
content Muli is added as a comprising element. 

Among these elements, the original data content MOi is stored in. the 
25 data content database of the data content dealing center. Accordingly, what is 
to be stored newly in the data content dealing center for executing secondary 
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copyright of the first user includes the first editing scenario Sli and the first 
user data content Mull. 

For this purpose, the first user Uli prepares a first secret-key Ksli, 
encrypts the first editing scenario Sli and the first user data content Muli 
using the first secret-key Ksli: 

Csliksli = W (Sli, Ksli) 
Cmuliksli = E (Muli, Ksli), 

encrypts the first secret-key Ksli using a public-key Kbc of the data content 
dealing center: 

Ckslikbc = E (Ksli, Kbc) 

and transfers the encrypted first editing scenario Csliksli (shown as "sli" in 
the figure), the encrypted first user data content Cmuliksli (shown as "mli" 
in the figure), and the encrypted first secret-key Ckslikbc (shown as "ksli" in 
the figure) to the data content dealing center. 

The first secret-key Ksli may be prepared by the first user Uli, or the 
first user Uli may ask the key management center to generate it. In caje the 
key management center generates the first secret-key Ksli, the first secret-key 
Ksli is enaypted using the public-key Kbli of the first user Uli: 

Ckslikbli =E(Ksli,Kbli) 
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and the encrypted first secret-key Cklikbli is distributed to the first u:;er Uli. 
The first user Uli decrypts it using the private-key Kvli: 

Ksli = D (Ckslikbli, Kvli) 

and the decrypted first secret-key Kli is used to encrypt the first editing 
scenario Sli and the first user data content Muli. 

The data content dealing center decrypts the transferred encrypted first 
seaet-key Ckslikbc using a private-key Kvc of the data content dealing center: 

Ksli = D(Ckslikbc,Kvc) 

decrypts the encrypted first editing scenario Csliksli and the encrypted first 
user data concent Cmulilcsli using the decrypted first secret-key Ksli: 

Sli = D (Csliksli, Ksli) 
Muli = D (Cnnuliksli, Ksli) 

and generates a first user data content label and a first editing scenario label 
according to the first user label, and the deaypted first secret-key Ksli, the first 
editing scenario Sli, the first user data content Muli, the first user dat.'i 
content label and the first editing scenario label are stored in the database. 

The first user or the data content dealing center may add watermark to 
the original data content MOi to check illegitimate use and may store i). 
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The database where the first secret-key Ksli, the first editing scenario 
Sli and the first user data content Muli are to be stored may be the da.ta 
content database where the original data content MOi is stored, or another 
scenario database may be provided to store them. 

To promote utilization of the first edited data content, the data content 
dealing management center prepares a catalog by means to compress or to 
divide into parts so that the first edited data content cannot be utilized as it is 
and posts it in the data content dealing center. 

(6) After reviewing the original data content MOi and the first edited data 
content Mli prepared in catalog, a second user U2i presents a second user 
label Lu2i and a public-key Kb2i of the second user U2i. By specifying the 
original data content MOi and /or the first edited data content Mli to be 
utilized, a request for use is sent to the data content dealing center. 

(7) Upon receipt of the request for use of the original data content MOi and/or 
the first edited data content Mli, the data content dealing center confirms the 
user label Lu2i to check for fee charging and identification. Then, the original 
data content MOi requested for use, is encrypted using the corresponding 
original secret-key KsOi. The first editing scenario Sli and the first user data 
content Muli are encrypted using the first secret-key Ksli, the original secret- 
key KsOi is encrypted using a public-key Kb2i, and the first secret-key Ksli is 
encrypted using the public-key Kb2i: 

CmOiksOi = E (MOi, KsOi) 
Csliksli = E(Sli, Ksli) 
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Cinuliksli = E (Muli, Ksli) 
Cks0ikb2i = E (KsOi, Kb2i) 
Ckslikb2i = E (Ksli, Kb2i). 

Then, the encrypted original data content Cn\OiksOi (shown as "mOi" in the 
figure), the encrypted first editing scenario Csliksli (shown as "sli" in the 
figure), the enaypted first user data content Cmuliksli (shown as "nriuli" in 
the figure), the encrypted original secret-key CksOikb2i and the encrypred first 
secret-key Ckslikb2i are transferred to the second user U2L And then, the 
data content dealing center charges for utilization of the original data content 
MOi and the first editing scenario Sli to the second user U2i, 

(8) When the encrypted original data content CmOiksOi, the encrypted first 
editing scenario Csliksli, the encrypted first user data content Cmuliksli, the 
enci*ypted original secret-key Cks01kb2i and the encrypted first seaet-key 
CksIikbZi have been transferred, the second user U2i decrypts the encr-pted 
original secret-key CksOikb2i and the encrypted first seaet-key Ckslikb2i using 
a private-key Kv2i of the second user U2i: 

KsOi = D (CksOikbZi, Kv2i) 
Ksli = D (CkslikbZi, Kvli). 

Next, the encrypted original data content CmOiksOi is decrypted using tne 
decrypted original secret-key KsOi, and the encrypted first editing scenaiio 
Csliksli and the encrypted first user data content Cmuliksli are decrypied 
using the decrypted first secret-key Ksli: 
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MOi = D (CmOiksOi, KsOi) 
Sli =:D(Csliksli,Ksli) 
Muli = D (Cmuliksli, Ksli) 

and a new second edited data content M2i is created by utilizing the decrypted 
original data content MOi, the first editing scenario Sli and the first user data 
content Muli. 

The second user U2i prepares a second secret-key Ks2i and encrypts a. 
new second editing scenario S2i and a second user data content Mu2i. not 
stored in the database of the data content dealing center, using the second 
secret-key Ks2i: 

Cs2iks2i = E (S2i, Ks2i) 
Cmu2iJ<:s2i = E (Mu2i, Ks2i). 

Then, the second secret-key Ks2i is encrypted using the public-key Kbc of the 
data content dealing center: 

Cks2ikbc = E (Ks2i, Kbc) 

and the encrypted second editing scenario Cs2iks2i (shown as "s2i" in tJ^ie 
figure), the enaypted second user data content Cmu2iks2i (shown as "mu2i" 
in the figure), and the encrypted second secret-key CksZikbc (shown as ' ks2i" 
in the figure) are transferred to the data content dealing center. 

Then, the same procedure is repeated. 
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[Embodiment 6] 

Description is given on this embodiment in which a data content editor 
sells a utilization right of an editing scenario by auction in the data content 
market, referring to Figure 7. In the embodiment, the utilization right of an 
editing scenario is auctioned on the market in the system, and an editing 
scenario seller who obtains the utilization right of the editing scenaric* sells or 
lends the editing scenario to a user. 

The original data content handled in the present system is an object, 
and the edited data content is expressed as the original data content object 
linked by the editing scenario. Therefore, only the editing scenario is »lealt in. 
When the editing scenario has been purchased or lent, the user collect? ar^d 
links the original data content used in accordance with the editing scenario 
ar.d reproduces the edited data content. In this case, the original data conten: 
may be collected by the user himself, but the burden on the user may be 
reduced if it is performed in the system side or by using an agent program. 

A data content dealing center, which serves as a core of the system, 
comprises a key management center, a data content database, a data content 
dealing management center, an editing scenario database, and an edini\g 
scenario rriarket management center present on the network. 

The data content database stores the original data content provided by 
an information provider (IP) and supplies it to a data content editor. 
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The editing scenario database stores the editing scenario when tiie data 
content editor obtains the edited data content by utilizing the original data 
content or the editor's data content created by the 'data content editor and 
supplies it to the editing scenario sellers, who participate in auction. 

The key management center stores a secret-key' for 
encryption /decryption for the original data content, the editor's data ctmtent 
and the editing scenario and supplies it to the data content editor or th.i 
editing scenario seller. 

The data content dealing management center prepares a catalog ;md 
advertises for the original data content and manages sales for the data content 

editor. 

The editing scenario market management center prepares a catalog and 
advertises for the edited data content and manages editing scenario auction 
and collects a fee. Further, the editing scenario market management center 
collects and links the original data content according to the editing scenario, 
when necessary, and also manages a Ibel for the editing scenario which is to 
be stored in the editing scenario database. 

For the detailed operation of each component, which comprises the 
data content dealing center, description is not given here because it is the 
same as already explained. 



(1) The information provider IPi (i = 1, 2, 3, ; the same applies hereinafter) 

encrypts the original data content MOi using an original secret-key KOi: 
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CmOiksOi ^ E (MOi, KsOi), 

encrypts the corresponding original secret-key KsOi using a public-key Kbc of 
5 the data content dealing center: 

CksOikbc = E (KsOi, Kbc) 

and supplies the encrypted original data content CmOiksOi (shown as "mOi" in 
10 the figure) and the encrypted original secret-key CksOikbc (shown as "ksOi" in 
the figure) to the data content dealing center. 

The original secret-key KsOi nnay be prepared by the information 
provider IPi, or the information provider IPi may ask the key management 
15 center to generate it. In case the key management center generates the 

original secret-key KsOi, the generated original secret-key KsOi is encrypted 
using a public-key KbOi of the information provider IPi: 

CksOikbOi - E (KsOi, KbOi). 

20 

The encrypted original secret-key CksOikbOi is distributed to the infonnation 
provider IPi, and is decrypted using a private-key KvOi of the IP: 

BCsOi = D (CksOikbOi, KvOi) 

25 

and the decrypted original secret-key KsOi is used for encryption of tJie 
original data content MOi. 
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The data content dealing center decrypts the supplied encryptec 
original secret-key CksOikbc using a private-key Kvc of the data content 
dealing center: 

KsOi = b (CksOikbc, Kvc), 

decrypts the encrypted original data content CmOiksOi using the decry]?ted 
original secret-key KsOi; 

MOi = D (CmOiksOi, KsOi) 

and stores the decrypted original data content MOi and the corresponding 
original secret-key KsOi to the data content database. 

The information provider or the data content dealing center may add 
watermark to the original data content MOi to check illegitimate use and may 
store it 

To promote utilization for editing of the original data content, the data 
content dealing management center prepares a catalog by means to compress 
or to divide into parts so that the original data content cannot be utilized as it 
is and posts it in the data content dealing center. 

(2) After reviewing the original data content, the data content editor Ei 
presents a data content editor label Lei and a public-key Kbii of the data 



58800.930CIP 



60 EXPRESS MAIL NO. EM100740755US 



content editor Ei, and requests for utilization by specifying the original data 
content to be utilized, to the data content deaJing center. 

(3) Upon receipt of the request for utilization of the original data conti?nt MOi, 
the data content dealing center confirms the user label Lei to check for fee 
charging and identification. Then, the original data content MOi is encrypted 
using the corresponding original secret-key KsOi: 

CmOiksOi = E (MOi, KsOi), 

encrypts the original secret-key KsOi using a public-key Kbei of the data 
content editor Ei: 

CksOikbei = E (KsOi, Kbei) 

and distributes the encrypted original data content CnaOiksOi and the 
encrypted original secret-key CksOikbei to the data content editor Ei, and 
furth.er, charges a fee for the original data content utilization to the data 
content editor Ei and an end user. 

(4) When the encrypted original data content CmOiksOi and the encrypted 
original secret-key CksOikbei have been distributed, the data content edi"or Ei 
decrypts the encrypted original secret-key CksOikbei using a private-key Kvei 
of the data content editor Ei; 

KsOi = E (CksOikbei, Kvei), 
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decrypts the encrypted original data content CmOiksOi using the decrypted 
original secret-key KsOi: 

MOi = D (CmOiksOi, KsOi) 

5 

and CTeates an edited data content Mei utilizing the decrypted original data 
content MOi. 

As described above, there are two cases to edit the data content: the case 
10 where a single original data content is used and the case where a plurality of 
original data contents are used. In these cases, the data content of the data 
content editor may be added. Therefore, as the data content to be used for 
editing in this embodiment, there are, in addition to a single data content, a 
plurality of original data contents and the data content of the data con:ent 
15 editor. Tne edited data content comprises the data content and the edidng 
scenario, i.e. the detail of editing. By obtaining these, it is possible to 
reproduce the edited data content. 

Inddentaily, the original data content is originally stored in the tlata 
20 content database of the data content dealing center. Accordingly, data 'vhich 
is not yet stored in the data content dealing center when newiy generated by 
editing the data content, is the editor's data content of the data content editor 
and the editing scenario. 

25 Therefore, by storing these in the data content dealing center, it i;; 

possible to handle the editor's data content of the data content editor who has 
edited the data content in the same manner as the original data content, and 
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the data content editor can be an information provider. Further, i: is also 
possible to sell utilization right of the editing scenario and/or the editor's data 
content by auction in the market. In this case, the utilization right of the 
editing scenario and the editor's data content may be plural for a single edited 
5 data content. 

(5) The edited data content Mei comprises the original data content MOi and 
the editing scenario Sei. Further, in some cases, the editor's data content is 
added as a comprising element. 

10 

Among these elements, the original data content MOi is stored in the 
data content database of the data content dealing center. Accordingly, what is 
to be stored newly in the data content dealing center is the editing scenario Sli 
and the editor's data content Medi. 

15 

To sell the utilization right of the editing scenario Sli and the editor's 
data content Medi, the data content editor Ei prepares a secret-key Ksei, 
encrypts the editing scenario Sei and the editor's data content Medi using the 
secret-key Ksei: 

20 

Cseiksei = E (Sei, Ksei) 
Smediksei = E (Medi, Ksei) 

and encrypts the secret-key Ksei using the public-key Kbc of the data content 
25 dealing center: 

Ckseikbc = E (Ksei, Kbc). 
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Then, the encrypted editing scenario Cseiksei (shown as "sei" in the figure), 
the encrypted editor's data content Cmeiksei (shown as "mei" in the f:gure), 
and the encrypted secret-key Ckseikbc (shown as "ksei" in the figure) are 
transferred to the data content dealing center. 

The secret-key Ksei may be prepared by the data content editor Ei, or the 
data content editor Ei may ask the key management center to generate it. In 
case the key management center generates the secret-key Ksei, the gent?rated 
secret-key Ksei is encrypted using the pubHc-key Kbei of the data conte:\t 
editor Ei: 

Ckseikbei = E (Ksei, Kbei) 

and the encrypted secret-key Ckseikbei is distributed to the data conten: editor 
Ei. The data content editor Ei decrypts it using own private-key Kvei: 

Ksei = D (Ckseikbei, Kvei) 

and the decrypted secret-key Ksei is used to encrypt the edidng scenario Sei 
and the data content editor's data content Medi. 

The data content dealing center decrypts the transferred encrypte-i 
secret-key Ckseikbc using the private-key Kvc of the data content dealing 
center: 

Ksei = D (Ckseikbc, Kvc). 
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Then, the encrypted editing scenario Cseiksei and the encrypted editor's data 
content Cmediksei are decrypted using the decrypted secret-key Ksei: 

5 Sei = D (Cseiksei, Ksei) 

Medi = D (Cmediksei, Ksei). 

Then, a copyright labei based on the data content editor label Lei is added to 
each of the decrypted secret-key Ksei, the editing scenario Sei and th^e editor's 
10 data content Medi, and these are stored in the database. 

The data content editor or the data content dealing center may add 
watermark to the editing scenario Sei and the editor's data content Medi to 
check illegitimate use and may store them. 

15 

The database where the secret-key Ksei, the editing scenario Sei and the 
editor's data content Medi axe to be stored may be the data content da::abase 
where the original data content MOi is stored, or another scenario database 
may be provided to store them, 

20 

For auction of the editing scenario and the editor's data content, the 
editing scenario market management center in the data content dealing 
center prepares a catalog by means to compress or to divide into parts so that 
the edited data content cannot be utili2ed as it is and posts it shown number 
25 of the selling utilization rights in the editing scenario market management 
center to announce the auction. 
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(6) After reviewing the edited data content Mei prepared in catalog, each of a 
plurality of editing scenario sellers Di presents an editing scenario seller label 
Ldi and a public-key Kbdi of the editing scenario seller Di and requests to 
purchase the editing scenario Sei and the editor's data content Medi to the 
editing scenario market management center. 

(7) Upon receipt of the request to purchase the editing scenario Sei and the 
editor's data content Medi, the editing scenario market management center 
confirms the editing scenario seller label Ldi to check for fee charging and 
identification, performs the auction in the market and sells the utilization 
right of the editing scenario Sei and the editor's data content Medi to a 
plurality of editing scenario sellers Di. 

As described above, the utilization right of the editing scenario £ind the 
editor's data content may be plural for a single edited data content. 

The editing scenario seller Di, to whom it has been decided to se'A, 
encrypts the secret-key Ksdi of the editing scenario seller Di using the public- 
key Kbc of the data content dealing center: 

Cksdikbc = E (Ksdi, Kbc) 

and transfers the encrypted secret-key Cksdikbc (shown as ksdi in the figure) 
to the editing scenario market management center. 
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(8) The editing scenario market management center decrypts the presented 
encrypted secret-key Cksdikbc using the private-key Kvc of the data content 
dealing center: 

5 Ksdi = D (Cksdikbc, Kvc) 

encrypts the editing scenario Sei and the editor's data content Medi using the 
decrypted secret-key Ksdi of the editing scenario seller Di: 

10 Cseiksdi = E (Sei, Ksdi) 

Cmediksdi = E (Medi, Ksdi) 

and sends the encrypted editing scenario Cseiksdi and encrypted editor's data 
content Cmediksdi to the editing scenario seller Di. 

15 

Also, the content of the copyright label is changed from the one leased 
on the data content editor label Lei to the one based on the editing scer.ario 
seller label Ldi. As a result, the secret-key Ksei of the data content editor 
cannot be used any more, and the secret-key Ksdi of the editing scenario seller 
20 can be used substantially. In this case, instead of changing the content of the 
copyright label, it may be newly added based on the editing scenario seller 
label Ldi. 

The editing scenario seller who purchases the encrypted editing 
25 scenario Cseiksdi executes thereafter the utilization right of the purcha;;ed 
editing scenario. The original data content can also be sold by auction in the 
same manner as the editing scenario. However, it is preferable to avoid to 
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sell to a specific seller because there may be a plurality of users utilizing the 
original data content. 

Then, the same procedure may be repeated if necessary. • 

In the data content dealing system described in each embodim^snt of the 
present application, in case that for a user device, a network computer 
without a storing unit such as a hard disk drive is used, the illegitimate use, 
i.e., using without pay or leakage of the data content hardly occurs. However, 
in case that for a user device, a general computer having a storing unit such 
as a hard disk drive is used, there is a possibility of problems such like these 
illegitimate use. 

To cope with such problems, adopting a cop5^ght management 
program and re-encryption of the data content is effective as the prese nt 
inventor has proposed in the U.S. Patent Application Serial No.08/41fi,037 (EP 
677949 A2), and if adopting an arrangement referred to as a real-time OS or an 
embedded system which allows the copyright management program 
performing re-encryption to precede other application programs, the 
illegitimate use problems can be effectively avoided. 

It is understood that particular embodiments described herein are 
illustrative and the present invention is not limited to these particula.- 
embodiments. It will be apparent to those skilled in the art that changt^s can 
be made in the various details described herein without departing from the 
scope of the invention. The present invention is defined by the claims and 
their full scope of equivalents. 
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